SB2020052915 - Multiple vulnerabilities in IBM Security Identity Governance and Intelligence

Security Bulletin ID SB2020052915

Severity

Medium

Patch available

YES

Number of vulnerabilities 8

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 8 secuirty vulnerabilities.

1) Command Injection (CVE-ID: CVE-2020-4231)

The vulnerability allows a remote user to execute arbitrary commands on the system.

The vulnerability exists due to insufficient input validation. A remote authenticated user can send specially crafted request and execute arbitrary commands on the system.

2) Information disclosure (CVE-ID: CVE-2020-4232)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the application allows username enumeration. A remote attacker can enumerate valid usernames and perform a brute-force attack against existing accounts.

3) Sensitive Cookie in HTTPS Session Without 'Secure' Attribute (CVE-ID: CVE-2020-4233)

The vulnerability allows a remote attacker to bypass security restrictions.

The vulnerability exists due to the application fails to set the secure flag for the session cookie in SSL mode. By intercepting its transmission within an HTTP session, an attacker could exploit this vulnerability to capture the cookie and obtain sensitive information.

4) Information disclosure (CVE-ID: CVE-2020-4244)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to the application allows to enumerate users. A remote attacker can guess user account and use this information in further attacks against the infrastructure.

5) Weak password requirements (CVE-ID: CVE-2020-4245)

The vulnerability allows an attacker to perform brute-force attack and guess the password.

The vulnerability exists due to weak password requirements in IBM Security Access Request. An attacker can perform a brute-force attack and guess users' passwords.

6) XML External Entity injection (CVE-ID: CVE-2020-4246)

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to insufficient validation of user-supplied XML input. A remote attacker can pass a specially crafted XML code to the affected application and view contents of arbitrary files on the system or initiate requests to external systems.

Successful exploitation of the vulnerability may allow an attacker to view contents of arbitrary file on the server or perform network scanning of internal and external infrastructure.

7) Information exposure through externally-generated error message (CVE-ID: CVE-2020-4248)

The vulnerability allows a remote user to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the application while handling error conditions. A remote user can obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

8) Information disclosure (CVE-ID: CVE-2020-4249)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to virtual appliance discloses highly sensitive information to other users on the system. A remote authenticated user can gain unauthorized access to sensitive information on the system.

Remediation

Install update from vendor's website.

SB2020052915 - Multiple vulnerabilities in IBM Security Identity Governance and Intelligence

Breakdown by Severity

Description

Remediation

References

Please verify you're human